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Novell ¡Manager 2.5 Installation Guide 


About This Guide 


This guide describes how to install Novell® ¡Manager 2.5. It is intended for network administrators 
and includes the following sections: 


+ 


+ 


+ 


+ 


Chapter 1, “Installing ¡Manager,” on page 9 

Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23 

Chapter 3, “Accessing ¡Manager,” on page 25 

Chapter 4, “Installing, Using, and Uninstalling Novell Plug-In Modules,” on page 27 


Additional Documentation 


+ 


+ 


+ 


Novell iManager 2.5 Administration Guide 


Novell Knowledge Base (http://support.novell.com/cgi-bin/search/searchtid.cg1?/ 
10097429.htm) 


Apache HTTP server (http://httpd.apache.org) 
Tomcat servlet container (http://jakarta.apache.org/tomcat) 
Java* Web site (http://java.sun.com) 


Microsoft* Windows* Web Services (http://www.microsoft.com/technet/treeview/ 
default.asp?url=/technet/prodtechnol/ïis/default.asp) 


Novell eDirectory™ product home page (http://www.novell.com/products/edirectory) 


Novell eDirectory product documentation (http://www.novell.com/documentation/ 
edirectory.html) 


Novell eDirectory Cool Solutions community (http://www.novell.com/coolsolutions/nds) 


Novell NetWare® documentation home page (http://www.novell.com/documentation/ 
netware.html). 


Novell Technical Services™ (http://support.novell.com) 


Documentation Updates 


For the most current documentation, see ¡Manager 2.5 (http://www.novell.com/documentation/ 
imanager25/index.html). 


Documentation Conventions 


In this documentation, a greater-than symbol (>) is used to separate actions within a step and items 
within a cross-reference path. 


A trademark symbol ee TM, etc.) denotes a Novell trademark. An asterisk (*) denotes a third-party 
trademark. 
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When a single pathname can be written with a backslash for some platforms or a forward slash for 
other platforms, the pathname is presented with a backslash. Users of platforms that require a 
forward slash, such as Linux* or UNIX*, should use forward slashes as required by your software. 


Novell ¡Manager 2.5 Installation Guide 


Installing iManager 


Novell® iManager provid es a global view of your network from one browser-based tool, allowing 
you to proactively assess and respond to changing network demands. Using iManager, you can 
administer Novell eDirectory™ and many other Novell products and services from a Web 
browser. 


Overview 


iManager is a centralized, Web-based management system that eliminates administrative 
redundancy and unnecessary overhead, saving you both time and money. 


This section discusses the following: 


+ 


+ 


+ 


“What's New in Version 2.5” on page 9 

“Server-Based and Client-Based Versions of ¡Manager 2.5” on page 9 
“Prerequisites” on page 10 

“Self-Signed Certificates” on page 12 

“Installing a New Version of iManager” on page 12 


“Uninstalling iManager” on page 20 


What's New in Version 2.5 


Novell ¡Manager 2.5 contains the following new features: 


+ 


+ 


+ 


Improved installation programs 

Enhanced group management capabilities 

Backwards compatibility with ¡Manager 2.0.x plug-ins 

Enhanced Role-Based Services (RBS) management and reporting 
Improved interface customizing options 

Auditing of ¡Manager logins and plug-in modifications 


Mobile iManager software that lets you run iManager locally on a workstation 


Server-Based and Client-Based Versions of iManager 2.5 


The server-based version of iManager 2.5 is called ¡Manager and it is installed on a server that can 
access an eDirectory tree. The client-based version is called Mobile iManager and is installed on 
a client workstation rather than a server. Use the following guidelines to decide which version fits 
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best in your environment or whether your eDirectory management policies would benefit from 
installing both versions: 


+ If you have a single administrator who always manages eDirectory from the same client 
workstation, you can take advantage of Mobile iManager. It requires little setup, and the 
resources it uses are started and stopped with the launching and shutdown of Mobile 
iManager. If Mobile ¡Manager is installed on a laptop, it is always available wherever the 
administrator is. 


¡Manager plug-ins do not synchronize between ¡Manager instances automatically. If you have 
multiple administrators and use customized plug-ins, Mobile ¡Manager and these plug-ins 
must be installed on each administrator’s client workstation. 


+ Ifyou manage eDirectory from multiple client workstations and have multiple administrators, 
you would probably want ¡Manager installed on a server so that it is available from any 
connected workstation. You need to install customized plug-ins only once. 


+ Ifyou have multiple administrators and your administrators are mobile, they might find 
benefits from being able to access ¡Manager both ways. 


IMPORTANT: If iManager 2.5 is installed before eDirectory, the ¡Manager login might fail and Tomcat might 
crash. To fix this problem, delete the following directory and restart Tomcat. 


+ Linux: /var/novell/nici/100/ 
+ Solaris: /var/novell/nici/60001/ 
+ HP-UX: /var/novell/nici/30/ 
Restart Tomcat: 
+ Linux: /etc/init.d/novell-tomcat4 start 
+ Solaris: /etc/init.d/imgr start 


+ HP-UX: JAVA_HOME=/opt/javal.4 su www /opt/hpws/tomcat/bin/startup.sh 


Prerequisites 
¡Manager 2.5 can be installed on a server (with or without eDirectory) or on a client workstation 
(Linux* or Windows*). 


Before upgrading to ¡Manager 2.5, delete any ¡Manager 2.0.2 field patches from the ¡Manager 
2.0.2 packages directory. The following are platform-specific locations of this directory: 


+ NetWare: sys:\tomcat\4\webapps\nps\packages 

+ Windows: C:\Program Files\Novell\Tomcat\webapps\nps\packages 
+ Linux: /var/opt/novell/iManager/nps/packages 

+ Solaris: /var/opt/novell/tomcat4/webapps/nps/packages/ 


+ HP-UX: /opt/hpws/tomcat/webapps/nps/packages 


The npm file that you must delete is similar in name to iMan202_x.npm, where x is the field patch 
number. 
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Server-Based iManager 


The following prerequisites apply to all server platforms. Additional platform-specific 
prerequisites are listed by platform in “Installing a New Version of iManager of iManager, p 11. 


A Supported Browsers: To run iManager, you need a workstation with Microsoft Internet 
Explorer 6.0 SP1, Mozilla 1.7, or Mozilla* Firefox* 1.0. 


IMPORTANT: Although you might be able to access iManager via a Web browser not listed, we do not 
guarantee or support full functionality. 


QO) eDirectory Management: iManager 2.5 can manage any server running Novell eDirectory 
8.6.2 or later. 


QO) eDirectory Coexistence: iManager 2.5 can coexist on a server with eDirectory 8.7.3 or later 
installed. 


Q Admin-Equivalent Rights: For the creation of a Role-Based Services (RBS) collection in the 
eDirectory tree and to run the iManager RBS Configuration Wizard, you must have admin- 
equivalent rights. 


Q Server Memory: You must have a minimum of 512 MB of RAM in the server where you are 
installing or running iManager. 1024 MB is recommended. Specific hardware requirements 
are listed under each individual server platform in “Installing iManager, p 11. 


Q Port Setup: To avoid port conflicts, find out which ports are in use on the server where you 
will install ¡Manager and determine whether they will conflict with ports used by iManager. 
Versions of Apache and Tomcat installed with iManager attempt to use ports 80, 443, 8009, 
8080, and 8005. If these ports are in use by another service, such as eDirectory, a problem is 
likely to occur. Installation instructions for each platform are located on page 11. 
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Mobile iManager 


Mobile ¡Manager is a standalone application for Novell Linux Desktop, Linux (SUSEŸLinux 9.0, 
9.1; SUSE Linux Enterprise Server 9.0; or Red Hat* AS 3.0, 8.0, or 9.0) and Microsoft Windows 
(Windows 2000 Professional, Windows 2000 Advanced Server, Windows 2000 Server, Windows 
2003 Server, Windows 2003 Advanced Server, or Windows XP Professional) client workstations. 


Mobile ¡Manager provides all of the same functionality as the server-based ¡Manager and has the 
following features: 


+ Is self-contained and installs and runs on various Linux or Windows client workstations. 


+ Has no dependencies on the server-based ¡Manager and can coexist with any and all versions 
ofiManager installed on your network. However, the client workstation can have only Mobile 
¡Manager installed on it. 


The following prerequisite applies to all clients. Additional platform-specific prerequisites are 
listed in “Installing ¡Manager on page 11. 


Q Admin-Equivalent Rights: For the creation of a Role-Based Services (RBS) collection in the 
eDirectory tree and to run the ¡Manager RBS Configuration Wizard, you must have admin- 
equivalent rights. 


Self-Signed Certificates 


Novell deliberately created a temporary, self-signed certificate that you use when installing 
Apache with ¡Manager on any platform except NetWare®. It has an expiration date of one year. 


This was never intended to be a long term implementation, only a stop-gap measure to get your 
system up and running so you can use ¡Manager securely immediately after installation. You 
should obtain a valid certificate from a Certificate Authority and replace the temporary one as soon 
as possible. OpenSSL does not recommend using self-signed certificates except for testing 
purposes. 


Installing a New Version of ¡Manager 


Novell ¡Manager 2.5 can be installed on the platforms listed below. In general, you should apply 
the latest Service Packs for your platform and meet the prerequisites listed in “Prerequisites” 
before installing iManager. 


+ “HP-UX” on page 13 

+ “Linux” on page 14 

+ “Linux Clients” on page 16 
+ “NetWare 6.5” on page 17 
+ “Solaris” on page 17 

+ “Windows” on page 18 


+ “Windows Clients” on page 20 
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HP-UX 


Prerequisites 


Procedure 


Root access is required for installation. 


In addition to the general prerequisites listed in “Prerequisites” on page 10, the following 
prerequisites also apply to ¡Manager on HP*-UX*: 


a 


2 


3 


4 


HP-UX 111 operating system with the latest patches installed 


Ensure that the OS is updated with patch PHSS_26560. You can download this patch from the 
HP IT Resource Center Web site (http://www.itrc.hp.com). 


Previous versions of ¡Manager 


If you have installed ¡Manager 2.0.x, you do not need to uninstall it. The ¡Manager 2.5 
installation can overwrite the files. The uninstall process does not remove custom-created 
content such as tasks. 


PA-RISC 2.0 processor 
400 MB of disk space 
gettext-0.12 installed 


You can download the gettext-0.12 depot from the HP-UX Porting and Archive Centre Web 
site (http://hpux.connect.org.uk/hppd/hpux/Gnu/gettext-0.12). 


libiconv-1.9 installed 


You can download the libiconv-1.9 depot from the HP-UX Porting and Archive Centre Web 
site (http://hpux.connect.org.uk/hppd/hpux/Development/Libraries/libiconv-1.9). 


Java* 2 SDK for HP-UX version 1.4.1.x as a minimum (1.4.2.x is recommended) 


Install the HP-UX Web Server Suite version 2.08 from the HP Software Depot Web site 
(http: //www.software.hp.com/cgi-bin/swdepot_parser.cgi/cgi/ 
displayProductInfo.pl?productNumber=HPUXWSSUITE). 


The suite contains the official versions of Apache and Tomcat that are supported for HP-UX. 
Select the download with all components: 


HP-UX Apache-based Web Server 
HP-UX Tomcat-based Servlet Engine 
HP-UX Webmin-based Admin 


Install Java 1.4.2 04 or later from the HP Java for HP-UX Web site (http://www.hp.com/go/ 
java) and update your path to find the new Java. 


Add the JAVA HOME environment variable to the Tomcat setenv.sh file located in /opt/ 
hpws/tomcat/bin. 


For example: 
JAVA_HOME=/0opt/ java 
Install a new certificate for Apache and then copy it to the following directories: 


/opt/hpws/apache/conf/ssl.crt/ and /opt/hpws/apache/conf/ssl.key/ 
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Linux 


Prerequisites 


The certificate that is installed with Apache on HP-UX does not have the correct information 
for your server. You can install a self-signed certificate or a certificate that you purchase from 
a trusted authority. 


The Webmin administration tool can generate keys, certificates, and certificate requests for 
Apache. Webmin is installed with the HP-UX Web Server Suite. For more information, see 
the HP-UX Web Server Suite documentation, which is accessible from your Apache 
installation (http://ip_address). For information on using Webmin to generate keys, 
certificates, and certificate requests, go to http://ip_address/hp_docs/faq/#security 11. 


IMPORTANT: Make sure you use the correct DNS name or IP address for the common name when you 
create a new certificate. 


5 At the Novell download site (http://download.novell.com), search for ¡Manager products, 
select ¡Manager 2.5, and then download iMan_25_hp.tgz to a directory on your server. 


6 Extract the iMan 25_hp.tgz file. 
For example: 
gzip -dc iMan_25_hp.tgz | tar xvf - 
7 Log outor close the terminal session to load your PATH settings. 
8 Use one ofthese commands to install iManager at the location you extracted the install files to: 
For a regular install, enter the following command: 
./iManagerInstallHPUX.bin 
or 
sh iManagerInstallHPUX.bin 
For a text-only install, enter the following command: 
. /iManagerInstallHPUX.bin -i console 
For a silent install, enter the following command: 
. /iManagerInstallHPUX.bin -i silent 


IMPORTANT: The iManager installer detects the HP-UX Web Server Suite. Do not change the install 
path for iManager. 


After the installation completes, you might need to wait several seconds for iManager to initialize 
before you can access iManager. To access iManager, see Chapter 3, “Accessing iManager,” on 
page 25. 


If you have installed a previous version of iManager and created RBS or custom content, you need 
to upgrade them to version 2.5. See Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23. 


Root access is required for installation. 


In addition to the general prerequisites listed in “Prerequisites” on page 10, the following 
prerequisites also apply to ¡Manager on Linux: 


Q SUSE LINUX 9.0 or later, SUSE LINUX Enterprise Server 8.0, SUSE LINUX Enterprise 
Server 9.0, Red Hat Linux 8.0 or 9.0, Red Hat Advanced Server 3.0 or later installed 
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Procedure 


a 


O 


The following packages installed: 
+ gettext 
+ python 
+ compat (SUSE) 
+ compat-libstdc++ (Red Hat) 


If you are missing any of these packages, you must obtain them from the vendor of your Linux 
distribution and install them before installing ¡Manager. They should be on your installation 
CDs. 


Previous versions of ¡Manager 


If you have installed ¡Manager 1.5.x on the server, you must uninstall this version before 
proceeding to install ¡Manager 2.5. If you have installed ¡Manager 2.0.x, you do not need to 
uninstall 1t. The ¡Manager 2.5 installation can overwrite the files. The uninstall process does 
not remove custom-created content such as tasks. 


Pentium* III 800 MHz or higher processor 
360 MB of disk space 
eDirectory setup 


If you are installing ¡Manager on a server with eDirectory already installed on it, the 
eDirectory version needs to be 8.7.3 or later for ¡Manager 2.5. 


If you are installing ¡Manager on a server without eDirectory, you must have eDirectory 8.6.2 
or later installed on another available server. 


Port setup 


Be aware of possible port conflicts. Apache, Tomcat, and JVM* are installed with the 
¡Manager installation program, which determines whether the default ports are in use. If they 
are in use, the install prompts you for different ports for Apache to run on. By default, Apache 
uses ports 80 and 443, and Tomcat uses ports 8080, 8005, and 9009. 


IMPORTANT: On Linux, ¡Manager is supported with the versions of Apache and Tomcat that are installed 
with iManager only. 


At the Novell download site (http://download.novell.com), search for ¡Manager products, 
select ¡Manager 2.5, and then download iMan 25 linux.tgz to a directory on your server. 


Extract the file using the following command: 

tar -zxvf iMan_25_linux.tgz 

Open a shell and change to the install_directory/iManager_linux directory. 

This path is relative to the directory where you copied or extracted the iManager files. 
Enter one of the following commands while logged in as root or root-equivalent: 

For a regular install, enter the following command: 

./install.sh 


After a successful install, the installer generates a configuration file (/etc/opt/novell/ 
imanager_install.conf) with values based upon the questions asked during the install. This file 
can then be modified and used for a silent install. 
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Linux Clients 


To perform a silent install, enter the following command: 

sh install.sh --silent --c-file=path to _ conf _ file 

To see a list of all the install options (local/remote) issue the following command: 
sh install.sh --help 


This command runs the pre-install and then touches the python script that displays the help 
menu. 


5 Follow the on-screen prompts. 


To accept the defaults, press Enter. The text within the brackets at the prompt is the default 
selection. To accept the default, press Enter. 


After the installation completes, you might need to wait several seconds for ¡Manager to initialize 
before you can access iManager. To access iManager, see Chapter 3, “Accessing iManager,” on 
page 25. 


If you have installed a previous version of iManager and created RBS or custom content, you need 
to upgrade them to version 2.5. See Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23. 


Root access is required for installation. 


Prerequisites 
QO) GTK2 Installed 
Q GLIBC 2.3 installed 
Q SUSE Linux 9.0, 9.1; Novell Linux Desktop 9.0; SUSE Linux Enterprise Server 9.0; or Red 
Hat AS 3.0, 8.0, or 9.0 (and updated with the latest available packages) 
Procedure 


1 At the Novell download site (http://download.novell.com), search for ¡Manager products, 
select ¡Manager 2.5, and then download iMan 25 Mobile iManager_linux.tar.bz2 to a 
directory on your server. 


2 Extract the file using the following command: 
tar -xjvf iMan_25_Mobile_iManager_linux.tar.bz2 


3 Install the Novell International Cryptography Infrastructure (NICI) software located in the 
NICI directory of the expanded iMan 25 Mobile iManager linux.tar directory. 


4 From the NICI directory, execute the following command. 


You must be logged in as root to install or upgrade NICI. On desktops where NICI is not 
installed, this command installs NICI. On desktops where NICI is already installed, this 
command upgrades NICI. 


rpm -Uvh nici-2.6.4-0.05.i386.rpm 
To access ¡Manager after NICI is installed, see Chapter 3, “Accessing iManager,” on page 25. 


If you have installed a previous version of iManager and created RBS or custom content, you need 
to upgrade them to version 2.5. See Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23. 
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NetWare 6.5 


Prerequisites 


Procedure 


Solaris 


Prerequisites 


In addition to the general prerequisites listed in “Prerequisites” on page 10, the following 
prerequisites also apply to iManager on NetWare 6.5: 


a 


a 
a 
a 
a 


NetWare 6.5 SP2 or later 

Pentium II 600 MHz or higher processor 

200 MB of hard disk space required for a local installation 
512 MB RAM required (1 GB recommended) 


eDirectory 8.7.3 or later (if it is on the same server as iManager) 


At the Novell download site (http://download.novell.com), search for iManager products, 
select ¡Manager 2.5, and from the list, download and extract iMan_25 NW65_Standalone.zip 
to the sys volume. 


In the NetWare 6.5 GUI, click the Novell button, and then click Install > Add. 
Browse to the extracted location, select the product.ini file, then click OK. 
Follow the on-screen instructions. 


After the installation completes, you might need to wait several seconds for iManager to 
initialize before you can access iManager. To access iManager, see Chapter 3, “Accessing 
iManager,” on page 25. 


If your server had iManager 2.0.x installed and you created RBS or custom content, you need to 
upgrade them to version 2.5. See Chapter 2, “Upgrading to iManager 2.5,” on page 23. 


Root access is required for installation. 


In addition to the general prerequisites listed in “Prerequisites” on page 10, the following 
prerequisites also apply to iManager on Solaris*: 


a 


a 


Sun* Solaris 8 or 9 (SPARC* processors only) with the latest required patches installed from 
the SunSolve* Web site (http://sunsolve.sun.com). 


Verify that you have a random device installed. If you are using Solaris 8, make sure that you 
have installed the optional patch 112438.02 and that the OS version is dated October 2001 or 
later. See the ¡Manager Readme for a sample script that sets up a random device. 


Previous versions of ¡Manager 


If you have installed ¡Manager 1.5.x on the server, you must uninstall this version before 
proceeding to install ¡Manager 2.5. If you have installed ¡Manager 2.0.x, you do not need to 
uninstall it. The ¡Manager 2.5 installation can overwrite the files. The uninstall process does 
not remove custom-created content such as tasks. 


eDirectory setup 
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Procedure 


Windows 


Prerequisites 


If you are installing iManager on a server with eDirectory already installed on it, the 
eDirectory version needs to be 8.7.3 or later to avoid conflicts with packages that are shared 
between both eDirectory and iManager. 


If you are installing iManager on a server without eDirectory, you must have eDirectory 8.6.2 
or later installed on another available server. 


Port setup 


Be aware of possible port conflicts. Apache, Tomcat, and JVM are installed with the ¡Manager 
installation program. The ¡Manager installation program checks to see if port 80 or 443 are in 
use. (For example, eDirectory uses port 80 by default with 1ts HTTP stack.) If they are in use, 
the install prompts you for different ports for Apache to run on. 


400 MB of disk space 


At the Novell download site (http://download.novell.com), search for iManager products, 
select ¡Manager 2.5, and then download iMan 25 sol.tzg. 


Extract iMan 25 sol.tzg using the following command: 

gzip -dc iMan_25_sol.tgz | tar xvf- 

Open a shell and change to the install_directory/installs/unix directory. 

This path is relative to the directory where you copied or extracted the iManager files. 
Enter the following command: 


. /iManagerInstallSolaris.bin 


5 Follow the prompts. 


After the installation completes, you might need to wait several seconds for iManager to initialize 
before you can access iManager. To access iManager after the install completes, see Chapter 3, 
“Accessing iManager,” on page 25. 


If you have installed a previous version of iManager and created RBS or custom content, you need 
to upgrade them to version 2.5. See Chapter 2, “Upgrading to iManager 2.5,” on page 23. 


You must log in as an administrator to install iManager. 


In addition to the general prerequisites listed in “Prerequisites” on page 10, the following 
prerequisites also apply to iManager on Windows: 


a 


Ooooo 


Windows 2000 Advanced Server SP4, 2000 Professional SP4, 2000 Server SP4, XP 
Professional SP1, or 2003 Server/2003 Advanced Server with the latest Service Pack installed 


Pentium III 600 MHz or higher processor 

300 MB of disk space for a local installation 

512 MB of RAM (1 GB recommended) 

eDirectory 8.6.2 or later installed on your Windows server or another available server 


Web services 
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Procedure 


Windows servers can use either Apache and Tomcat or Windows Web Services (IIS) and 
Tomcat. The ¡Manager installation program determines which Web services are already 
installed. Ifthe Windows server is using IIS and you want to use Apache and Tomcat, you 
must remove IIS before installing Apache and Tomcat with the ¡Manager installation 
program. The ¡Manager installation program does not configure IIS to use SSL. 


U Previous versions of iManager do not need to be uninstalled. If iManager 2.5 detects version 
1.5.x, it uninstalls it before proceeding. IfiManager detects version 2.0.x, it overwrites the 
files. The uninstall process does not remove custom-created content such as tasks. 


The ¡Manager 2.5 installation program installs and configures the following items if it does not 
detect a compatible version: 


+ Apache 2.0.49 (installed if Apache and IIS are not detected) 

+ Tomcat 4.1.30 

+ Sun JVM 1.4.2 04 

+ Novell International Cryptographic Infrastructure (NICI) 2.7.0 
+ NMAS™ Client 2.7 


IMPORTANT: If your system is preconfigured with Java/Apache/Tomcat/mod_jk2Tomcat, you might need to 
create the nps-apache.conf file with the following lines: 


alias /nps <tomcatroot>/webapps/nps 


<LocationMatch "/nps/*.jsp"> 
JkUriSet worker ajp13:localhost: 8009 
</LocationMatch> 


<LocationMatch "/nps/servlet/*"> 
JkUriSet worker ajp13:localhost: 8009 
</LocationMatch> 


<LocationMatch "/nps/services/*"> 
JkUriSet worker ajp13:localhost: 8009 
</LocationMatch> 


After you create this file, edit the apache configuration file in APACHE HOME/conf/httpd.conf 
and append the following line to the end of the file: 


Example: Include C:\Program Files\Novell\Apache\conf\nps-Apache.conf 


1 At the Novell download site (http://download.novell.com), search for ¡Manager products, 
select ¡Manager 2.5, and then download iManagerInstall.exe to a directory on your server. 


2 Run iManagerInstall.exe. 


TIP: You can view the debug output of the installation program by holding down the Ctrl key immediately 
after launching the installer. Continue to hold down the key until a console window appears. 


3 Follow the on-screen instructions. 


After the installation completes, you might need to wait several seconds for iManager to 
initialize before you can access iManager. To access iManager, see Chapter 3, “Accessing 
iManager,” on page 25. 


IMPORTANT: If multiple Web sites are running on the server, see “"Page not found" Error on a Windows 
Server” for additional information. 


Installing iManager 19 


4 If you have installed a previous version of iManager and created RBS or custom content, you 
need to upgrade them to version 2.5. 


See Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23 


Windows Clients 


Uninstalling 


Prerequisite 


Q Windows 2000 Professional, Windows 2000 Advanced Server, Windows 2000 Server, 
Windows 2003 Server, Windows 2003 Advanced Server, or Windows XP Professional (and 
updated with the latest SP) 


Q If you configure Internet Explorer to use a proxy server for your LAN, then you must also 
select Bypass Proxy Server for Local Addresses option under Tools > Internet Options > 
Connections > LAN Settings. 


IMPORTANT: Mobile ¡Manager requires that the NMAS client be installed on the workstation. If you are 
running a Novell Client M earlier than version 4.91, you must make sure that the NMAS client is already 
installed on the workstation before launching Mobile iManager. If the 4.91 Client is already installed or if the 
Novell Client is not installed at all, Mobile iManager auto-installs the NMAS client for you. 


Procedure 


1 At the Novell download site (http://download.novell.com), search for ¡Manager products, 
select ¡Manager 2.5, and then download iMan 25 Mobile iManager win.zip. 


2 Extract the file. 
To access iManager, see Chapter 3, “Accessing iManager,” on page 25. 


If you have installed a previous version of iManager and created RBS or custom content, you need 
to upgrade them to version 2.5. See Chapter 2, “Upgrading to ¡Manager 2.5,” on page 23. 


¡Manager 


This section explains how to uninstall ¡Manager on the following platforms: 
+ HP-UX 
+ Linux 


+ NetWare 


+ 


Solaris 
+ Windows 


WARNING: Before uninstalling iManager, make sure to back up any custom content or other special ¡Manager 
files that you would like to preserve. Custom content is usually stored in the webapps\nps\packages directory 
and is called custom.npm 


There is no specific sequence in which ¡Manager or the associated third-party components must 
be uninstalled. 


There are, of course, ramifications to uninstalling any of these components. For example, if you 
uninstall either the Web server or the servlet container, you will not be able to run iManager. Also, 
on all platforms except NetWare, the uninstall removes only files that it installed in the first place. 
If there are files that were created by the application (for example, the log files and auto-generated 
configuration files that are created while Tomcat runs), these will not be deleted by the uninstall 
because it did not install them. 
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HP-UX 


Linux 


NetWare 6.5 


Solaris 


Windows 


Likewise, if you have created new files or modified existing files within the directory structure that 
was originally laid down during the install, these files are not removed by the uninstall. This is a 
safeguard so that data is not unintentionally deleted when a product is uninstalled. 


Uninstalling ¡Manager does not affect any of the RBS configurations that you have set in your tree. 


Root access is required for uninstalling. 
1 Open a shell and execute the following command: 


/opt/hpws/tomcat/webapps/nps/UninstallerData/ 
UninstalliManager 


Root access is required for uninstalling. 


1 Open a shell and go to the iManager linux directory created when you extracted the 
installation files from the iMan 25 linux.tgz file. 


2 Execute the installation script: 
./uninstall.sh 


3 When the script pauses to display the products to uninstall, enter a to uninstall all. 


NOTE: The uninstall procedure does not remove configuration, log files, and custom content. 


1 In the NetWare GUI, click Novell > Install. 


2 From the installed products list, select ¡Manager 2.5 and then click Remove. 


Root access is required for uninstalling. 
1 Open a shell and execute the following command: 
/var/opt/novell/tomcat4/nps/UninstallerData/UninstalliManager 
2 Click Uninstall. 


¡Manager can be uninstalled from Windows using the Add or Remove Programs applet in the 
Control Panel. If the ¡Manager installation installed Apache, Tomcat, or NICI, they are listed 
separately in Add or Remove Programs. If you are no longer using them, you can uninstall each 
program separately, in any order, using the Add or Remove Programs applet. 


IMPORTANT: If eDirectory is installed on the same server as iManager, NICI might be required to continue 
to run eDirectory. 


When you remove iManager 2.5, only a portion of the files in the file system are removed. You 
are asked 1f you want to remove all ¡Manager files. If you select Yes, all ¡Manager files are 
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removed, including all custom content. However, the 2.5 RBS objects are not removed from the 
eDirectory tree, and the schema remains in the same state. 


Mobile iManager 


To uninstall Mobile iManager, delete the directory where you extracted the files. NMAS and NICI 
files remain on the server. 
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Upgrading to ¡Manager 2.5 


If you currently have a version of Novell* ¡Manager installed on a server, you need to either 
upgrade or migrate to ¡Manager 2.5, depending on whether you are running ¡Manager 2.0.x or 
1.5.x. This section explains the following procedures: 


+ “Migrating Role-Based Services” on page 23 
+ “Upgrading from ¡Manager 2.0.x” on page 24 


Migrating Role-Based Services 


Making the move from ¡Manager 1.5.x to ¡Manager 2.5 is more accurately described as a migration 
rather than an upgrade. You must migrate Role-Based Services (RBS) objects and tasks. 


After installing ¡Manager 2.5 on your server or Mobile ¡Manager (see Chapter 1, “Installing 
iManager,” on page 9), the RBS objects in your eDirectory™ tree need to be migrated to the 
¡Manager 2.5 format. You accomplish this by using the new RBS Configuration task in ¡Manager 
2.5. 


To access the migration task: 
1 Create a 2.5 collection. You must do this before you can migrate the 1.5.x collection to it. 
2 In iManager, select the Configure view, then click Role Based Service > RBS Configuration. 


If no collections are listed on the 2.x Collections tabbed page, click New > Collection and 
Setup, and then follow the online instructions. 


3 Click the 1.x Collections tab. 

The 1.x Collections page displays all of your 1.5.x collections that can be migrated to 2.5. 
4 Select the collection you want to migrate, then click Migrate at the top of the table. 
5 Select the 2.x collection you want to migrate to, then click Start. 


After the migration is complete, the 1.x collection is still intact in your eDirectory tree. If you 
have no further use for it, you can delete it from within ¡Manager 2.5. 


6 (Optional) To delete a 1.x collection, click the 1.x Collections tab, select the collection you 
want to delete, and then click Delete at the top of the table. 


The RBS migration wizard does not migrate custom tasks created in ¡Manager 1.x to version 2.5 
tasks. You have two options for moving your 1.5.x custom tasks into ¡Manager 2.5: 


+ You can re-create them by using the Plug-in Studio in ¡Manager 2.5. In the Configure view, 
click Role Based Services > Plug-in Studio > New. 


+ You can use the Custom Task Migration Utility to migrate your 1.5.x tasks to 2.5 tasks. 


The custom task migration utility can be downloaded from the Novell Technical Services 
Web site (http://support.novell.com/cgi-bin/search/searchtid.cgi?/2969968.htm). A Readme 
file inside the download explains how to use it. If you have no custom tasks or content, you 
do not need to run the custom task migration utility. 
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Upgrading from iManager 2.0.x 


24 


The first time you use ¡Manager 2.5 to log in to an eDirectory tree that contains an ¡Manager 2.0.2 
RBS Collection, it is possible that not all of the roles and tasks will be displayed. This is working 
as expected because some of the ¡Manager 2.0.2 plug-ins require updates so that ¡Manager 2.5 can 
fully utilize them. Go to the RBS Configuration page which lists which RBS modules are out of 
date. We recommend that you update your RBS modules to the latest version so that you can see 
and use all of the installed modules on both ¡Manager 2.0.2 and ¡Manager 2.5. 


Be aware in this situation of possibly having multiple roles with the same name. Some plug-in 
developers, when they updated their plug-ins for ¡Manager 2.5, changed task IDs or module names 
but retained the same display names, thus causing the roles to appear to be duplicated when, in 
fact, one instance is from one version and the other is from a newer version. 

NOTE: Because different installations of iManager 2.0.x or 2.5 might have a different number of plug-ins 
locally installed, you might see discrepancies in the module report for any given collection from the Role Based 


Services > RBS Configuration page. In order for the numbers to match between ¡Manager installations, make 
sure that the same subset of plug-ins is installed on each ¡Manager instance in the tree. 


To check whether you have outdated RBS objects: 
4 Select the Configure view, then click Role Based Services > RBS Configuration task. 
The table on the 2.x Collections tabbed page displays any out of date modules. 


2 To update them, select the number in the Out-Of-Date column for the Collection you want to 
update. 


The list of outdated modules is displayed. 
3 Select the module you want to update and then click Update at the top of the table. 


Upgrades from ¡Manager 2.0.x to 2.5 are supported by the install program. When you run the 
¡Manager 2.5 installation program on a server that is running ¡Manager 2.0.x, the existing 2.0.x 
directory structure is backed up to the TOMCAT HOME directory. This assures the preservation 
of any custom content created in ¡Manager 2.0.x. The Novell Plug-in Modules (NPMs) located in 
the backed-up 2.0.x directory are then compared to the NPMs included with ¡Manager 2.5. NPMs 
that either don't exist or are newer than those in the 2.5 packages directory are copied to the 
¡Manager 2.5 TOMCAT _HOMEwebappsinps packages directory and installed. 


Novell ¡Manager 2.5 Installation Guide 


Accessing iManager 


Novell® iManager is accessed via a Web browser. This section includes the following procedures: 


+ 


+ 


+ 


“Using a Supported Web Browser” on page 25 

“Accessing ¡Manager (Server-Based)” on page 25 

“Starting Mobile ¡Manager on Linux” on page 26 

“Mobile ¡Manager Desktop Launcher on a SUSE or Novell Linux Desktop” on page 26 
“Starting Mobile ¡Manager on Windows” on page 26 

“Accessing ¡Manager with a Screen Reader and Other Accessibility Options” on page 26 


Using a Supported Web Browser 


To access ¡Manager and for complete use of all ¡Manager features, you must use a computer 
ruming one of the following Web browsers: 


+ 


+ 


+ 


Microsoft* Internet Explorer 6 SP1 
Mozilla* 1.7 
Mozilla Firefox* 1.0 


Although you might be able to access iManager via a Web browser not listed, we do not guarantee 
or support full functionality. 


NOTE: Accessing iManager 2.5 through an iChain® server, with a path-based multihoming accelerator and 
the Remove Sub Path from URL option enabled, is not supported. 


Accessing ¡Manager (Server-Based) 


1 


In a supported Web browser, type the following in the Address (URL) field: 
http: //server_IP_address/nps/iManager.html 

For example: 

http://127.0.0.1/nps/iManager.html 

You might be redirected to an HTTPS secure page. 

IMPORTANT: URLs are case sensitive. 

Log in using your username, password, and eDirectory™ tree name. 

You can substitute the IP address of an eDirectory server for the tree name. 


To have full access to all Novell ¡Manager features, you must log in as a user with admin- 
equivalent rights to the tree. 
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Starting Mobile iManager on Linux 
4 From the bin directory of the expanded iMan 25 Mobile iManager linux.tar directory, run 
imanager.sh. 


2 Log in using your username, password, and eDirectory tree name. 


Mobile iManager Desktop Launcher on a SUSE or Novell Linux 
Desktop 
To create a desktop launcher for Mobile ¡Manager on a SUSE Linux desktop, you must edit the 
iManager.sh script. For example, if you extracted the Mobile ¡Manager .bz2 file to the /opt/novell 


directory, locate the iManager.sh script in the /opt/novell/imanager/bin directory and add the 
following line at the beginning of the script, just below the #!/bin/sh line: 


cd /opt/novell/imanager/bin 


Starting Mobile iManager on Windows 
1 From the bin directory of the unzipped iMan 25 Mobile iManager win directory, run 
imanager.bat. 


2 Log in using your username, password, and eDirectory tree name. 


Accessing iManager with a Screen Reader and Other Accessibility 
Options 
iManager includes a “simple” display that can be effectively used with screen readers, in Internet 
Explorer, on a Windows™ platform (client side). 
1 In a supported Web browser, enter the following in the Address (URL) field: 
http: //server_IP_address/nps/Simple.html 
For example: 
http://127.0.0.1/nps/Simple.html 
2 Log in using your username, context, password, and eDirectory tree name. 


To have full access to all Novell ¡Manager features, you must log in as a user with admin- 
equivalent rights to the tree. 


Complete accessibility statements are available on the Novell Web site (http://www.novell.com/ 
accessibility). 
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Installing, Using, and Uninstalling Novell Plug-In 
Modules 


There are two types of Modules used in iManager: Novell® Plug-in Modules (NPMs) and RBS 
Modules. 


+ Novell Plug-in Modules (NPMs) 


Novell Plug-in Modules (NPMs) are archives that contain the files for plug-ins to iManager. 
When you install an NPM using the Module Installation task you are installing a plug-in to 
iManager to add to its functonality. 


RBS Modules 


RBS Modules are objects in eDirectory™ that contain RBS Tasks and RBS Book objects. 
When Role Based Services has been configured in an eDirectory tree, the RBS Module must 
be installed after the NPM for the new tasks associated with the plug-in, to become available 
to use. 


Both types of modules are sometimes referred to simply as “modules” when working with 
iManager. This chapter addresses Novell Plug-in Modules. 


Novell iManager 2.5 ships with a core set of Novell plug-in modules (NPMs), including 
eDirectory Administration, Group, and Schema, etc. Many Novell products also have their own 
product-specific NPMs that are used in iManager. For example, Identity Manager/DirXML? 
includes ¡Manager plug-in modules that let you manage and configure all of your Identity 
Manager/DirXML objects in Novell eDirectory. 


An NPM version must be compatible with the version of iManager it is running with. Refer to the 
specific product documentation for info about ¡Manager version requirements for a particular 
NPM. 


Typically, plug-in modules are installed with the base ¡Manager installation or product-specific 
installation programs. You can also download and install plug-in modules separately. For more 
information, see “Downloading and Installing an NPM” on page 28. 


Base Plug-in Modules 


The following plug-in modules are included with the iManager base product: 


NMAS™ LDAP SNMP 

DS Repair Service Manager WAN Manager 
DS Merge Novell Certificate Server™ (PKI) Index Manager 
Replica Wizard iManager Base Content ICE 


Backup and Restore 
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Downloading and Installing an NPM 


Novell plug-in modules (NPMs) are available for download on the Novell Product Downloads 
Web site. For more information on where and how to download plug-ins, see TID#10095332 
(http://support.novell.com/cgi-bin/search/searchtid.cgi?/10095332.htm). 


NOTE: By default, the plug-in modules are not replicated between ¡Manager servers. We recommend that you 
install the plug-in modules you want on each ¡Manager server. 


The process you use to download and install plug-in modules varies depending on whether or not 
you have RBS configured. For more information about RBS, see “Roles and Tasks” in the 
iManager 2.5 Administration Guide. 


+ If RBS is not configured, all tasks appear in the Contents Panel regardless of your access 
rights, and no additional setup is required beyond plug-in module installation. See “Installing 
a Plug-In When RBS Is Not Configured” on page 28. 


+ If RBS is configured, the new plug-in module is not available for use until you upgrade your 
collections. See “Installing a Plug-In When RBS Is Configured” on page 29. 


Installing a Plug-In When RBS Is Not Configured 


28 


1 Go to the ¡Manager Plug-Ins site (http://download.novell.com/ 
index.jsp?search=Search&keywords=&families=26 11 &platforms=&date_range=&language 
s=&x=21 &y=3). 


A list displays the available plug-ins, organized by product. 


2 Select the plug-in you want to download and review information specific to that plug-in, then 
close the text windows. 


Plug-ins are packaged in modules (NPMs). These modules are capable of containing one or 
more plug-ins. 


3 Click the Download button, log in, then review the download agreement. 
If you haven't registered yet, you can register for free. 
4 On the server where ¡Manager is installed, download the plug-in.npm. 
5 Log in to ¡Manager. 
6 Click the Configure button [35] 
7 Under Module Installation, click Available Novell Plug-in Modules. 
8 Click New, then browse for the plug-in.npm file. 
9 Click OK. You are returned to the Available Novell Plug-in Modules page. 
10 Select the plug-in.npm file and click Install. 
This install will take a few minutes. 


11 Restart Tomcat. 


Platform Restart Command 

NetWare® 6.5 or Enter TC4STOP. Wait at least one minute, then enter TOMCATA to start the 
later service again. 

Windows* Stop and start the Tomcat service. 
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Platform Restart Command 


Solaris* Enter /etc/init.d/imgr stop, then enter 
/etc/init.d/imgr start. 


HP*-UX* Enter /opt /hpws/tomcat /bin/shutdown. sh, then enter 
/opt/hpws/tomcat/bin/startup.sh. 


Linux* Enter /etc/init.d/novell-tomcat4 stop, then enter 
/etc/init.d/novell-tomcat4 start. 


Tomcat sometimes requires several minutes to fully initialize. Wait at least 5 minutes before 
trying to log in to iManager. 


Restart Apache. 
Verify that the new Role appears in the Roles and Tasks page. 


To add members to the new Role, use the Modify Member Association task. 


Installing a Plug-In When RBS Is Configured 


IMPORTANT: In order to reinstall an existing plug-in, you must first delete the rbsModule object for that plug- 
in from eDirectory using the Module Configuration > Delete RBS Module task. 


1 


on oOo OO A 


Go to the iManager Plug-Ins site (http://download.novell.com/ 
index.jsp?search=Search&keywords=&families=2611 &platforms=&date_range=&language 
s=&x=21 &y=3). 


A list displays the available plug-ins, organized by product. 


Select the plug-in you want to download and review information specific to that plug-in, then 
close the text windows. 


Plug-ins are packaged in modules (NPMs). Those modules are capable of containing one or 
more plug-ins. 


Click the Download button, log in, then review the download agreement. 

If you haven't registered yet, you can register for free. 

On the system where ¡Manager is installed, download the plug-in.npm. 

Log in to ¡Manager. 

Click the Configure button [35] 

Click ¡Manager Configuration > Modules, then click Install to install the module package. 
Select the plug-in.npm file to install. 

This install will take a few minutes. 


Restart Tomcat. 


Platform Restart Command 


NetWare 6.5 or later Enter TC4STOP. Wait at least 1 minute, then enter TOMCATA to start the 
service again. 


Windows Stop and start the Tomcat service. 
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Deleting an NPM 
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Platform Restart Command 


Solaris Enter /etc/init .d/imgr stop, then enter 
/etc/init.d/imgr start. 


HP-UX Enter /opt /hpws /tomcat /bin/shutdown. sh, then enter 
/opt/hpws/tomcat/bin/startup.sh. 


Linux Enter /etc/init.d/novell-tomcat4 stop, then enter 
/etc/init.d/novell-tomcat4 start. 


Tomcat sometimes requires several minutes to fully initialize. Wait at least 5 minutes before 
trying to log in to iManager. 


Restart Apache. 

Log in to ¡Manager, then click the Configure button. 

Select Role-Based Services > RBS Configuration. 

The table on the 2.x Collections tabbed page displays any out-of-date modules. 


To update them, select the number in the Out-of-Date column for the Collection you want to 
update. 


The list of outdated modules is displayed. 


Select the module you want to update and then click Update at the top of the table. 


In ¡Manager, select the Configure view. 

Click Module Installation > Installed Novell Plug-in Modules. 
Select the plug-in modules you want to delete. 

Click Uninstall. 


Restart Tomcat. (See previous table of commands.) 
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